Chromium Code Reviews
|
|
Chromium Code Reviews
Issue
2369563002:
Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE… (Closed)
|
Created:
4 years, 2 months ago by Joe Mason Modified:
4 years, 2 months ago Reviewers:
Will Harris CC:
chromium-reviews, wfh+watch_chromium.org, pennymac+watch_chromium.org, rickyz+watch_chromium.org Target Ref:
refs/pending/heads/master Project:
chromium Visibility:
Public. |
DescriptionAdd header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well.
BUG=649827
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng
Committed: https://crrev.com/861e256723897757ff2023c0755524d0b7bbfb3e
Cr-Commit-Position: refs/heads/master@{#421410}
Patch Set 1 #Patch Set 2 : Fix typo #
Total comments: 2
Patch Set 3 : Add unit test that ASLR works in debug as long as it's delayed #
Total comments: 2
Messages
Total messages: 20 (10 generated)
Description was changed from ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=none ========== to ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=none CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ==========
ptal
joenotcharles@chromium.org changed reviewers: + wfh@chromium.org
Actually adding a reviewer this time. PTAL.
https://codereview.chromium.org/2369563002/diff/20001/sandbox/win/src/securit... File sandbox/win/src/security_level.h (right): https://codereview.chromium.org/2369563002/diff/20001/sandbox/win/src/securit... sandbox/win/src/security_level.h:163: // enabled after startup. Corresponds to hmm if this is true and these can be set post startup for debug builds then I'd like ProcessMitigationsTest.CheckWin8 to be updated to add this flag in debug for SetDelayedProcessMitigations and verify this works.
Description was changed from ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=none CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ========== to ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=649827 CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ==========
https://codereview.chromium.org/2369563002/diff/20001/sandbox/win/src/securit... File sandbox/win/src/security_level.h (right): https://codereview.chromium.org/2369563002/diff/20001/sandbox/win/src/securit... sandbox/win/src/security_level.h:163: // enabled after startup. Corresponds to On 2016/09/23 19:31:10, Will Harris wrote: > hmm if this is true and these can be set post startup for debug builds then I'd > like ProcessMitigationsTest.CheckWin8 to be updated to add this flag in debug > for SetDelayedProcessMitigations and verify this works. Done.
The CQ bit was checked by joenotcharles@chromium.org to run a CQ dry run
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
The CQ bit was unchecked by commit-bot@chromium.org
Dry run: This issue passed the CQ dry run.
sorry for delay reviewing https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... File sandbox/win/src/process_mitigations_test.cc (right): https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... sandbox/win/src/process_mitigations_test.cc:892: mitigations |= kDebugDelayedMitigations; do you really mean to add these mitigations twice, once on L884 and again here?
https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... File sandbox/win/src/process_mitigations_test.cc (right): https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... sandbox/win/src/process_mitigations_test.cc:892: mitigations |= kDebugDelayedMitigations; On 2016/09/26 18:31:38, Will Harris wrote: > do you really mean to add these mitigations twice, once on L884 and again here? That's NDEBUG, this is !NDEBUG. "DebugDelayedMitigations" are only delayed in debug builds.
On 2016/09/26 19:39:58, Joe Mason wrote: > https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... > File sandbox/win/src/process_mitigations_test.cc (right): > > https://codereview.chromium.org/2369563002/diff/40001/sandbox/win/src/process... > sandbox/win/src/process_mitigations_test.cc:892: mitigations |= > kDebugDelayedMitigations; > On 2016/09/26 18:31:38, Will Harris wrote: > > do you really mean to add these mitigations twice, once on L884 and again > here? > > That's NDEBUG, this is !NDEBUG. "DebugDelayedMitigations" are only delayed in > debug builds. woops yes you're right :) lgtm
The CQ bit was checked by joenotcharles@chromium.org
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
Message was sent while issue was closed.
Description was changed from ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=649827 CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ========== to ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=649827 CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ==========
Message was sent while issue was closed.
Committed patchset #3 (id:40001)
Message was sent while issue was closed.
Description was changed from ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=649827 CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng ========== to ========== Add header comments documenting extra constraints for some sandbox mitigations: MITIGATION_RELOCATE_IMAGE and MITIGATION_RELOCATE_IMAGE_REQUIRED don't work in Debug builds, and MITIGATION_WIN32K_DISABLE often requires the FAKE_USER_GDI_INIT rule as well. BUG=649827 CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.win:win10_chromium_x64_rel_ng Committed: https://crrev.com/861e256723897757ff2023c0755524d0b7bbfb3e Cr-Commit-Position: refs/heads/master@{#421410} ==========
Message was sent while issue was closed.
Patchset 3 (id:??) landed as https://crrev.com/861e256723897757ff2023c0755524d0b7bbfb3e Cr-Commit-Position: refs/heads/master@{#421410} |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
